$ rpki-client -vvf rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft File: IkB3DhUcdBqE3pTijHUgArg5--0.mft (raw, json) Hash identifier: 0OjcusSo3ZXIsCSM/bpTxfB+pRKItF/ZcP0YABV332I= Subject key identifier: 08:CD:CC:21:FC:63:54:A2:C4:1A:46:1A:3D:38:B7:3A:18:EC:57:18 Authority key identifier: 22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED Certificate issuer: /CN=A91A665A/serialNumber=2240770E151C741A84DE94E28C752002B839FBED Certificate serial: 073E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft Manifest number: 0735 Signing time: Thu 24 Apr 2025 21:32:26 +0000 Manifest this update: Thu 24 Apr 2025 21:32:26 +0000 Manifest next update: Thu 01 May 2025 21:32:26 +0000 Files and hashes: 1: IkB3DhUcdBqE3pTijHUgArg5--0.crl (hash: lZPXCbr/ENt8US59XvM3y494LGn/E8PYMzDBuOIOWko=) 2: 05E355AEA03811EDBC101B49C4F9AE02.roa (hash: VX7tWpkB3IpeXdKnDIMHBHz09wmck5Wxazs1on6cWAs=) 3: 8224075A293711EB9DE16C62C4F9AE02.roa (hash: UtE0iQnooYxxq8F81zrRGsRO6qH6B3IIfoj4HCuUdUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:32:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1854 (0x73e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A665A, serialNumber=2240770E151C741A84DE94E28C752002B839FBED Validity Not Before: Apr 24 21:32:26 2025 GMT Not After : May 1 21:32:26 2025 GMT Subject: CN=680aadea-88f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:43:e9:df:de:48:a4:1b:5c:51:7f:a0:cb:d8: 2e:71:04:e5:58:45:f1:c2:1a:bb:ba:45:d2:2d:ce: d8:99:1d:b5:92:a0:36:74:f0:56:57:63:d0:7b:4f: cf:de:06:58:64:f1:29:b4:60:44:7f:4a:ff:d6:93: cc:1d:3b:4b:06:cc:46:76:8e:a8:5e:18:87:a2:88: d8:43:57:24:ee:4b:0b:7f:53:22:38:32:c8:d4:04: 96:f4:47:68:94:7a:83:ae:1e:e2:08:f5:65:e7:4a: 21:e0:eb:d9:9e:7e:52:8d:09:8a:95:b6:a0:54:7d: 6a:28:87:21:98:38:67:ec:91:0d:ec:1a:56:50:21: 71:0e:8e:ce:3a:65:d5:bc:59:de:4b:67:45:7c:94: e7:26:eb:11:50:78:b1:b2:a3:12:16:6e:88:38:c6: 82:18:97:77:d3:14:63:f7:5b:1e:6f:2c:32:4d:c0: c7:59:1e:74:28:06:69:d8:6b:17:f2:64:8b:45:30: a5:6e:18:87:71:5f:6b:cc:68:05:85:e7:92:68:7e: 9a:e3:21:33:36:16:40:cd:62:3e:e9:64:66:60:8b: e1:be:0f:b7:17:f4:9e:a4:67:4c:51:a6:bf:d5:b8: fb:12:24:14:47:69:9c:19:fe:b4:af:01:69:27:fe: dc:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:CD:CC:21:FC:63:54:A2:C4:1A:46:1A:3D:38:B7:3A:18:EC:57:18 X509v3 Authority Key Identifier: keyid:22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:bb:43:ff:a6:74:43:82:8a:02:d9:8b:f0:98:aa:42:22:82: 7d:51:83:0b:8f:da:71:f7:51:8a:a3:f2:b4:be:e5:f1:9e:cb: 58:e8:89:d4:4e:39:59:f6:c8:34:a8:2e:f6:f5:c9:e4:b6:55: 47:4c:e2:f2:1b:04:4e:3f:8a:11:6a:ae:e6:7b:e1:c2:79:bb: 6e:7a:64:c5:fd:84:9c:2e:6c:08:ce:17:f8:1c:34:8a:50:a3: cf:85:6e:7b:a8:45:39:b3:6a:d2:47:73:a6:fa:06:46:9a:66: a8:a3:54:9c:ed:7d:9a:e1:03:72:c8:8b:f6:5d:fe:f9:c1:2f: 63:ff:b3:e0:3e:71:82:ec:0a:92:b5:29:02:f6:d1:90:fb:ce: 9f:3a:0b:1c:89:da:fe:45:5b:58:3a:d6:77:a6:3d:63:93:30: 9d:86:45:4b:a6:64:1b:c2:bd:45:57:f9:42:92:0e:c1:35:c1: e0:88:14:86:36:8c:7b:4f:37:e1:2b:3c:14:5e:29:f1:e2:13: be:a5:75:20:17:08:b8:62:6c:32:62:9a:44:cf:66:62:8f:72: b1:e2:5d:da:87:92:f0:d2:97:c4:46:26:52:0d:ae:c3:3f:75: 01:f3:b0:5e:c7:37:a8:43:a6:6c:ee:8b:c3:05:09:e0:3d:52: cb:17:e4:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY2NUExMTAvBgNVBAUTKDIyNDA3NzBFMTUxQzc0MUE4NERFOTRFMjhDNzUyMDAy QjgzOUZCRUQwHhcNMjUwNDI0MjEzMjI2WhcNMjUwNTAxMjEzMjI2WjAYMRYwFAYD VQQDEw02ODBhYWRlYS04OGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUPp395IpBtcUX+gy9gucQTlWEXxwhq7ukXSLc7YmR21kqA2dPBWV2PQe0/P 3gZYZPEptGBEf0r/1pPMHTtLBsxGdo6oXhiHoojYQ1ck7ksLf1MiODLI1ASW9Edo lHqDrh7iCPVl50oh4OvZnn5SjQmKlbagVH1qKIchmDhn7JEN7BpWUCFxDo7OOmXV vFneS2dFfJTnJusRUHixsqMSFm6IOMaCGJd30xRj91sebywyTcDHWR50KAZp2GsX 8mSLRTClbhiHcV9rzGgFheeSaH6a4yEzNhZAzWI+6WRmYIvhvg+3F/SepGdMUaa/ 1bj7EiQUR2mcGf60rwFpJ/7cawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjNzCH8 Y1SixBpGGj04tzoY7FcYMB8GA1UdIwQYMBaAFCJAdw4VHHQahN6U4ox1IAK4Ofvt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjY1QS9DOEZBRDEzODI5 MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RCcUUzcFRpakhVZ0FyZzUt LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lrQjNEaFVjZEJxRTNwVGlqSFVnQXJnNS0tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjY1QS9DOEZBRDEzODI5MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RC cUUzcFRpakhVZ0FyZzUtLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHu0P/pnRDgooC2YvwmKpCIoJ9UYMLj9px91GKo/K0vuXxnstY6InU TjlZ9sg0qC729cnktlVHTOLyGwROP4oRaq7me+HCebtuemTF/YScLmwIzhf4HDSK UKPPhW57qEU5s2rSR3Om+gZGmmaoo1Sc7X2a4QNyyIv2Xf75wS9j/7PgPnGC7AqS tSkC9tGQ+86fOgscidr+RVtYOtZ3pj1jkzCdhkVLpmQbwr1FV/lCkg7BNcHgiBSG Nox7TzfhKzwUXinx4hO+pXUgFwi4YmwyYppEz2Zij3Kx4l3ah5Lw0pfERiZSDa7D P3UB87BexzeoQ6Zs7ovDBQngPVLLF+S6 -----END CERTIFICATE-----Generated at Sat Apr 26 12:36:44 2025 by rpki-client